Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/4196294609DC11EAB5F81165F8AEA228.roa
File: 4196294609DC11EAB5F81165F8AEA228.roa (raw, json)
Hash identifier: rvTGKuGz+Um7wXM7KK2vsyfSvYYV/k8zmfxRvkS9byg=
Subject key identifier: 72:7E:08:3A:61:C1:81:08:57:C8:B7:C6:96:3A:FE:42:AF:09:F0:FC
Certificate issuer: /CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Certificate serial: 3C
Authority key identifier: 23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
Authority info access: rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/4196294609DC11EAB5F81165F8AEA228.roa
Signing time: Mon 18 Nov 2019 08:20:19 +0000
ROA not before: Mon 18 Nov 2019 08:20:12 +0000
ROA not after: Sat 17 Nov 2029 08:20:12 +0000
asID: 327687
IP address blocks: 137.63.146.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.mft
rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:21:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60 (0x3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAR/serialNumber=23E63BA551365FC59123A63712D79782AF1028D1
Validity
Not Before: Nov 18 08:20:12 2019 GMT
Not After : Nov 17 08:20:12 2029 GMT
Subject: CN=5dd25443-3807
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1e:d3:02:93:3a:a7:aa:d1:4f:52:b7:dd:7c:
00:1e:9c:61:69:d4:88:2b:a8:9c:52:eb:a5:cf:c5:
a6:7a:ca:99:23:06:30:25:a4:60:fe:08:d6:b6:81:
8f:42:7f:ba:f6:3f:9f:2d:d1:a6:38:a5:de:ba:00:
d0:75:2b:8e:3f:7a:c8:4c:92:33:c5:4d:05:0c:ae:
5d:5d:69:5c:78:58:dd:71:4a:87:fd:d4:e5:68:be:
0a:32:49:f4:e0:84:64:d8:45:ee:90:4e:e5:09:02:
c0:05:93:ba:31:57:05:a7:b6:c4:5e:70:a3:81:b5:
99:66:86:d5:3a:ca:db:af:e9:e3:2a:11:fc:c6:e3:
e2:44:4d:65:50:ae:70:9d:9e:a9:8f:e4:88:f5:fc:
64:00:6d:1c:af:38:9a:f3:8f:86:e5:b0:6e:f8:80:
1d:2f:a9:ee:3d:69:91:28:2c:2b:58:5e:22:91:28:
b9:4e:63:b1:8b:0e:de:0a:02:52:ba:b1:03:bc:ba:
53:8b:f3:a9:b9:92:ba:91:cf:95:00:0a:ae:29:38:
6c:1b:ef:65:d0:78:8b:85:a7:af:ca:58:7d:20:7b:
df:53:aa:72:07:a9:1a:cc:cb:3a:32:02:9e:e6:59:
65:70:5c:ef:64:e3:2a:a6:de:82:a9:a4:83:f6:33:
ec:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:7E:08:3A:61:C1:81:08:57:C8:B7:C6:96:3A:FE:42:AF:09:F0:FC
X509v3 Authority Key Identifier:
keyid:23:E6:3B:A5:51:36:5F:C5:91:23:A6:37:12:D7:97:82:AF:10:28:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/I-Y7pVE2X8WRI6Y3EteXgq8QKNE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/87EF9710DF6111E98F394530F8AEA228/4196294609DC11EAB5F81165F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
137.63.146.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:61:a6:b4:ae:6a:b9:7c:cd:ab:cd:da:83:c5:3b:e3:0b:1c:
40:d0:3c:ba:13:03:9b:63:65:aa:89:0b:37:9c:ad:29:b6:5f:
d3:e2:22:fa:e6:3c:00:ec:ec:fe:cb:15:47:8c:9b:f4:2a:cf:
70:56:63:dc:ba:3f:a3:d5:63:31:c6:8e:d5:c8:39:14:d8:ac:
6b:b5:c9:66:17:51:b5:52:ba:8a:c2:d6:e6:09:15:12:da:dd:
80:98:a8:6f:a6:e8:82:ab:45:37:09:34:d9:b0:c7:8a:96:77:
bf:a8:dd:b0:7b:ff:1a:52:d6:9d:09:40:2c:c4:a4:e7:5a:b9:
f9:52:38:f7:a4:39:4f:17:72:f1:f0:cc:e9:f9:c1:e6:a1:e8:
6c:c5:95:be:83:3b:9b:be:22:a5:a0:1e:68:dc:48:41:72:17:
2d:c7:58:b7:de:e2:b1:c8:f3:a6:d6:cf:f3:63:df:ab:47:8b:
54:b0:19:cd:37:b2:53:19:fc:b9:b5:d2:f9:63:0a:64:87:e6:
6b:7c:52:41:81:7e:b4:a9:6a:5a:3e:61:9a:d7:f2:60:1c:04:
a8:74:3a:99:21:31:34:f7:00:7a:23:93:0e:c4:b4:b9:f7:98:
c9:98:2f:21:bf:1c:c3:bd:34:30:60:61:0c:47:0f:f8:fb:05:
cb:ea:be:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org